CVE-2024-11944
Severity CVSS v4.0:
Pending analysis
Type:
CWE-22
Path Traversal
Publication date:
30/12/2024
Last modified:
18/08/2025
Description
iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of iXsystems TrueNAS devices. Authentication is not required to exploit this vulnerability.<br />
<br />
The specific flaw exists within the tarfile.extractall method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of root. Was ZDI-CAN-25626.
Impact
Base Score 3.x
8.80
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:-:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:beta1:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:rc1:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u1:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u1.1:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u2:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u3:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u3.1:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u4:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u5:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u5.1:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u5.2:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u5.3:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u6:*:*:*:*:*:* | ||
| cpe:2.3:o:ixsystems:truenas_firmware:13.0:u6.1:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page